LB38 - Information Systems Security Engineer - Cleared

Annapolis Junction, Maryland, United States

Applications have closed

• Responsible for ensuring that the appropriate operational security posture is obtained, monitored, and maintained for multiple information systems throughout their lifecycle. Must possess in-depth knowledge and understanding of the intent of security controls required to obtain, manage, and monitor all security aspects of an information system from cradle-to-grave. Candidate is required to coordinate the day-to-day security operations of the information systems with System Administrators, System Engineers, Software Distribution, Patch Management, and Sustainment Teams. Position serves to interpret and develop security policies, provide mentorship and guidance to other security engineers, lead security meetings, gather and report program IT security metrics, and serve as the program ISSO/ISSE representative at key stakeholder meetings with customer representatives.

• Responsible for providing system vulnerability testing using COTS based tools, and generate security finding reports. Must be able to build security control test cases.

• Responsibilities will include; but are not limited to, reviewing, analyzing and documenting the secure implementation of logical controls, physical controls, environmental controls, personnel security, incident handling, security relevant changes, continuous monitoring activities, audit log review, analysis and reporting. Additionally, the candidate is responsible to develop SOPs and provide security training and awareness of the Information System to both privileged and non-privilege users.

Requirements

TS/SCI with poly required

  • Fourteen (14) years experience as an ISSO on projects of similar scope, type, and complexity is required.
  • Experience is to include at least two (2) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools.
  • Bachelor’s degree in Computer Science or related discipline from an accredited college or university is required.
  • One or more of these certifications: CAP, CND, Cloud+, GSLC, Security+ CE, HCISPP, CASP+ CE, CISM, CISSP (or Associate), or CCISO
  • Four (4) years of additional experience as an ISSO may be substituted for a bachelor’s degree.
  • Minimum of three (3) years of experience in a technical role, providing technical expertise for software intensive projects
  • One or more of these certifications: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, or SSCP
  • Serve as a Security Engineer supporting software architecture development.
  • Possess knowledge or experience performing day-to-day ISSE/ISSO responsibilities with knowledge and experience managing and maintaining SSP’s within Xacta.
  • Apply current computer science technologies and IA requirements to the analysis, design, development, evaluation, and integration of computer/communication systems and networks to maintain an acceptable system security posture throughout the lifecycle of multiple systems.
  • Coordinate and work with various system stakeholders to determine the applicable security/IA requirements based on the intent of the security requirements.
  • Proven ability to manage and maintain System Security Plans (SSPs) from inception through decommissioning following the process within Xacta for systems.


Desired:

• Coordinate with program management and other stakeholders to track and maintain risks associated with multiple Information Systems to ensure compliance with all Information Assurance requirements and directives.

• Knowledge in Multi-level Security/Cross Domain systems and operations with special requirements

• Experience in the management and maintenance of systems required to satisfy the Certification and Accreditation requirements

• Experience with analysis, disposition, and evaluation of both hardware and software

• Experience with any of the following COTS security tools: Nessus, Nmap, AppScanner, ACAS Security Center

• Experience with Linux and Networking is a plus

Benefits

  • Health & Life Insurance
  • Dental Insurance
  • Disability Insurance
  • 401K Retirement Plan with Matching
  • Tuition Assistance
  • Vacation and Sick Leave
  • Hiring Bonuses
  • Referral Recruitment Program

Tags: CASP+ CISM CISSP Cloud Compliance Computer Science Encryption GICSP GSEC GSLC ISSE Linux Monitoring Nessus Nmap SSCP System Security Plan TS/SCI

Perks/benefits: 401(k) matching Health care Insurance

Region: North America
Country: United States
Job stats:  4  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.